Cyber Security Engineer

Position Summary

Cooley Technology fosters a culture of customer service excellence, and all department members are expected to advance this agenda. The Cyber Security Engineer is expected to recognize that the Cooley Technology department is first and foremost a service organization. This will be evaluated equally with the technical and operational responsibilities. This role involves maintaining and monitoring the security practices and systems implemented by Cooley LLP. The Cyber Security Engineer will implement and manage security systems and tools as directed by Firm policies, procedures, and management.

Position Responsibilities

• Review, analyze, and monitor security system reports and logs for suspicious activities, trends, and patterns, including web filters, mail gateways, firewalls, encryption systems, anti-malware, and IDS/IPS.
• Configure, maintain, and administer security products and solutions used within the Firm.
• Configure, maintain, and administer firewalls, VPN, privileged access management (PAM), data loss prevention, EDR, and security information event monitoring (SIEM) systems.
• As a member of the Incident Response team, respond to alerts, warnings, incidents, and help desk tickets to ensure minimum exposure of Firm assets under the direction of the Cyber Security Manager.
• Participate in troubleshooting efforts on all cyber security related problems, including establishing, managing, and utilizing TAM arrangements with specified security vendors.
• Participate as a technician/engineer on Technology and Innovation projects.
• Conduct risk and security reviews on products as directed by the Cyber Security Manager or Technology management.
• Recommend controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy.
• Monitor Technology security metrics and measures, including security system logs, Windows server logs, and network monitoring systems.
• Provide consultation and conduct internal investigations that may require forensic analysis under the direction of the Cyber Security Manager and/or Technology management.
• Respond to audit findings as directed by the Cyber Security Manager and/or Technology Management.
• Evaluate and recommend commercial security vendors and products.
• All other duties as assigned or required.

Skills and Experience

Required:

• After orientation at Cooley LLP, exhibit proficiency in the Microsoft Office suite, iManage, and other firm applications.
• Ability to work extended and/or weekend hours, as required.
• Ability to travel, as required.
• 2+ years of experience in information security.
• Proven practical experience in information security and well-rounded knowledge of Technology.
• Experience working with: Active Directory, Firewalls, Intrusion Detection and Prevention Systems (IDS/IPS), Endpoint Detection and Response (EDR) and management console, Web filter/proxy technologies, Encryption technologies (whole disk, e-mail, and data at rest), Vulnerability scanners, Data loss prevention, Email gateways and anti-spam services, Privileged account management systems, Security information and event management systems, AWS and Azure Cloud Services.
• Required to participate in a 7x24 on-call rotation.

Preferred:

• Bachelor’s Degree in Information Technology or Computer Information Systems.
• CISSP or equivalent certifications and/or experience.
• Experience working with the following products: Palo Alto Network’s Firewalls and Prisma Access, Tenable Vulnerability Scanner, VMWare, Cyberhaven Data Loss Prevention, Proofpoint Email Gateway and Anti-Spam, Forensic Tools, S/MIME email encryption, Delina Secret Server, Crowdstrike, Google SecOps SIEM, Two factor authentication technologies, Penetration testing tools, Patch management systems.

Competencies

• Exceptional customer service skills.
• Excellent analytical, problem-solving, customer service, project management, and communication skills.
• Goal-oriented.
• Excellent decision-making, integrity, and ability to work with IT management, business users, and staff.
• Excellent oral and written communication skills, including technical and user documentation.
• Strong organizational skills.
• Ability to work independently and under high pressure with tight schedules and deadlines.
• Ability to interact well with all levels of business professionals.
• Excellent active listening skills.
• Flexible and patient with process development/execution and adherence to project management practices.
• Capable of grasping new concepts quickly and without prior experience.
• Detail-oriented.
• Ability to multi-task and work in a fast-paced environment.
• Ability to interact and coordinate with several teams to achieve objectives.
• Ability to solve problems independently and simultaneously, effectively managing multiple tasks.
• Professional demeanor at all times.

Key skills/competency

• Information Security
• Incident Response
• Security Operations
• Firewall Management
• SIEM Systems
• EDR Solutions
• Vulnerability Management
• Cloud Security (AWS/Azure)
• Data Loss Prevention (DLP)
• Privileged Access Management (PAM)